Siemens RUGGEDCOM

As of January 10, 2023, CISA will no longer be updating ICS security advisories for Siemens product vulnerabilities beyond the initial advisory. For the most up-to-date information on vulnerabilities in this advisory, please see Siemens' ProductCERT Security Advisories CERT Services | Services |...

WWBN AVideo salt generation insufficient entropy vulnerability

Talos Vulnerability Report TALOS-2023-1900 WWBN AVideo salt generation insufficient entropy vulnerability January 10, 2024 CVE Number CVE-2023-49599 SUMMARY An insufficient entropy vulnerability exists in the salt generation functionality of WWBN AVideo dev master commit 15fed957fb. A specially...

Screen SFT DAB 600/C Unauthenticated Information Disclosure (userManager.cgx)

Summary Screen's new radio DAB Transmitter is reaching the highest technology level in both Digital Signal Processing and RF domain. SFT DAB Series - Compact Radio DAB Transmitter - Air. Thanks to the digital adaptive precorrection and configuatio flexibility, the Hot Swap System technology, the...

CVE-2001-1434

The vulnerability CVE-2001-1434 affects Cisco IOS 12.0(5)XU through 12.1(2). An SNMP command snmp-server host can cause creation of a readable SNMP community string, enabling remote attackers to read system administration and topology information. Exploitation is remote and depends on SNMP access...

CVE-1999-1258

CVE-1999-1258 affects SunOS 4.1.1 and earlier; the rpc.pwdauthd daemon does not properly prevent remote access, allowing remote attackers to obtain sensitive system information. The root cause is inadequate access control on the RPC daemon, leading to information disclosure. Public details in pro...